$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/5FF7DA8AC9DD11EF9A19CE57C4F9AE02.roa File: 5FF7DA8AC9DD11EF9A19CE57C4F9AE02.roa (raw, json) Hash identifier: +gnNwknF2udgbeSCQKAvlJ+Kl8XnvhGtCbKQkcxQ+I8= Subject key identifier: 75:3F:D1:26:8F:6A:54:A2:3A:0F:FA:80:80:35:93:66:51:2B:46:2F Certificate issuer: /CN=A91B23D9/serialNumber=7634AD86656EFE6C45E4EF998F94B697AC39BEF1 Certificate serial: 03 Authority key identifier: 76:34:AD:86:65:6E:FE:6C:45:E4:EF:99:8F:94:B6:97:AC:39:BE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/djSthmVu_mxF5O-Zj5S2l6w5vvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/5FF7DA8AC9DD11EF9A19CE57C4F9AE02.roa Signing time: Fri 03 Jan 2025 14:16:51 +0000 ROA not before: Fri 03 Jan 2025 14:16:51 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134606 IP address blocks: 2001:df4:bf40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/djSthmVu_mxF5O-Zj5S2l6w5vvE.crl rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/djSthmVu_mxF5O-Zj5S2l6w5vvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/djSthmVu_mxF5O-Zj5S2l6w5vvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9 Validity Not Before: Jan 3 14:16:51 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6777f152-5ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c2:1d:d1:9b:78:75:62:93:e0:34:02:13:9b: 6c:b4:30:9e:f2:43:00:b0:04:bb:c0:20:26:55:bb: 18:d6:24:b7:d0:ae:e2:9b:d6:2d:14:5c:6e:39:19: fc:11:07:6c:ca:2b:90:f4:3d:94:02:8f:60:bd:12: d0:d5:e8:45:72:5e:b2:55:05:94:35:94:c9:9a:c2: 75:14:9b:01:22:77:00:5a:dc:a9:16:f0:d7:9b:ec: 75:b7:86:6e:73:d0:7b:32:ed:e5:17:2d:9f:37:bf: 8d:69:e2:fa:19:87:a9:5b:24:d7:7a:5d:1d:5d:19: 4e:e1:f7:80:a3:68:c8:31:64:72:02:83:ab:18:d1: be:61:0d:4e:f6:64:df:a5:b8:1a:ca:9d:29:b8:ff: 1a:bb:df:ab:31:37:a6:56:a5:76:9c:39:b6:69:8f: 8d:ea:84:c1:dc:5d:a2:c5:0a:08:b8:8f:76:4a:c3: 8f:e3:69:40:f8:4b:eb:93:d1:21:56:0d:24:72:cd: 7e:2d:6a:7e:f9:ac:5d:44:79:1e:58:d6:d0:63:25: 71:58:2a:5e:b5:32:a9:bc:b7:9f:48:78:bd:d8:f3: 49:30:01:ae:5e:3d:39:62:e3:b8:90:91:19:6e:71: 33:6a:39:a6:ae:bf:fb:b7:ac:15:64:71:35:5e:cc: ee:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3F:D1:26:8F:6A:54:A2:3A:0F:FA:80:80:35:93:66:51:2B:46:2F X509v3 Authority Key Identifier: keyid:76:34:AD:86:65:6E:FE:6C:45:E4:EF:99:8F:94:B6:97:AC:39:BE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/djSthmVu_mxF5O-Zj5S2l6w5vvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/djSthmVu_mxF5O-Zj5S2l6w5vvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/5FF7DA8AC9DD11EF9A19CE57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:bf40::/48 Signature Algorithm: sha256WithRSAEncryption 4b:84:32:93:47:76:b5:23:2d:d3:49:dc:40:e7:cd:6b:c9:a6: 7b:9a:fd:b4:3e:61:4b:f3:83:3d:3e:53:d7:ca:a3:dd:dd:f4: 85:bf:4c:79:ff:9e:7a:bd:84:d1:d1:1b:41:1d:da:24:25:f9: c7:5a:8b:0e:35:b3:08:d8:98:b0:e8:94:ae:20:d9:97:f3:2a: b6:ce:90:07:34:41:19:d5:02:11:fe:da:e1:74:07:2f:e6:6d: 04:b8:06:2f:68:b3:4a:9a:3b:c6:b4:71:7e:72:39:a5:b9:d4: 50:18:fa:fa:a8:77:44:e8:a5:29:27:a3:fd:3b:9e:09:4c:22: 3c:f0:48:49:fa:6c:f1:26:e5:e6:d8:7b:6a:0b:84:e5:93:5b: 59:77:58:15:eb:a3:bb:79:1d:d5:12:7c:16:21:01:78:3f:b8: eb:93:ee:92:2f:0a:72:8b:b2:80:8f:8b:07:09:ac:d4:a4:8b: 1c:6d:07:80:bb:7c:f5:65:62:1b:57:c0:79:23:d8:55:46:1c: ca:c8:c1:da:22:ac:cc:1c:f0:10:48:22:8c:0f:59:e7:55:eb: ca:2a:e6:94:9c:5e:ea:37:6d:55:56:d5:bd:e5:9c:8a:3e:68: b6:af:34:1c:9b:02:e9:46:00:c7:f1:ed:49:c0:4e:d7:10:6c: fc:ff:cb:a6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjNEOTExMC8GA1UEBRMoNzYzNEFEODY2NTZFRkU2QzQ1RTRFRjk5OEY5NEI2OTdB QzM5QkVGMTAeFw0yNTAxMDMxNDE2NTFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzdmMTUyLTVhYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1wh3Rm3h1YpPgNAITm2y0MJ7yQwCwBLvAICZVuxjWJLfQruKb1i0UXG45GfwR B2zKK5D0PZQCj2C9EtDV6EVyXrJVBZQ1lMmawnUUmwEidwBa3KkW8Neb7HW3hm5z 0Hsy7eUXLZ83v41p4voZh6lbJNd6XR1dGU7h94CjaMgxZHICg6sY0b5hDU72ZN+l uBrKnSm4/xq736sxN6ZWpXacObZpj43qhMHcXaLFCgi4j3ZKw4/jaUD4S+uT0SFW DSRyzX4tan75rF1EeR5Y1tBjJXFYKl61Mqm8t59IeL3Y80kwAa5ePTli47iQkRlu cTNqOaauv/u3rBVkcTVezO4/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUdT/RJo9q VKI6D/qAgDWTZlErRi8wHwYDVR0jBBgwFoAUdjSthmVu/mxF5O+Zj5S2l6w5vvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyM0Q5LzgzNjg2QUNDQzlE MTExRUY5NzVCREM0QkM0RjlBRTAyL2RqU3RobVZ1X214RjVPLVpqNVMybDZ3NXZ2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGpTdGhtVnVfbXhGNU8tWmo1UzJsNnc1dnZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNEOS84MzY4NkFDQ0M5RDExMUVGOTc1QkRDNEJDNEY5QUUwMi81RkY3REE4QUM5 REQxMUVGOUExOUNFNTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfS/QDANBgkqhkiG9w0BAQsFAAOCAQEAS4Qyk0d2tSMt 00ncQOfNa8mme5r9tD5hS/ODPT5T18qj3d30hb9Mef+eer2E0dEbQR3aJCX5x1qL DjWzCNiYsOiUriDZl/Mqts6QBzRBGdUCEf7a4XQHL+ZtBLgGL2izSpo7xrRxfnI5 pbnUUBj6+qh3ROilKSej/TueCUwiPPBISfps8Sbl5th7aguE5ZNbWXdYFeuju3kd 1RJ8FiEBeD+465Puki8KcouygI+LBwms1KSLHG0HgLt89WViG1fAeSPYVUYcysjB 2iKszBzwEEgijA9Z51XryirmlJxe6jdtVVbVveWcij5otq80HJsC6UYAx/HtScBO 1xBs/P/Lpg== -----END CERTIFICATE-----Generated at Thu Feb 6 04:05:57 2025 by rpki-client